Bernardo Damele
|
012815333c
|
minor bug fix to ignore provided -D when brute-forcing columns/tables names and the DBMS is either Access, Firebird or SQLite
|
2013-01-23 15:52:03 +00:00 |
|
Miroslav Stampar
|
232f8d3585
|
Fix for an Issue #368
|
2013-01-23 13:36:17 +01:00 |
|
Bernardo Damele
|
f4028bd7d2
|
minor adjustment
|
2013-01-23 02:10:38 +00:00 |
|
Bernardo Damele
|
d8a0e7eacb
|
fixes #187
|
2013-01-23 01:27:01 +00:00 |
|
Bernardo Damele
|
5635776173
|
proper SQLite 2 library
|
2013-01-22 18:56:25 +00:00 |
|
Bernardo Damele
|
dea15b5892
|
notify user if --udf-inject is provided but no stacked queries SQLi is detected
|
2013-01-22 18:28:48 +00:00 |
|
Miroslav Stampar
|
d6a361f859
|
Proper implementation for --technique=Q --dbms=Firebird
|
2013-01-22 16:31:26 +01:00 |
|
Miroslav Stampar
|
719c7f622b
|
Probable fix for --technique=Q --dbms=Firebird (but also other potential issues with splitting of fields in expressions)
|
2013-01-22 15:51:06 +01:00 |
|
Miroslav Stampar
|
2ec828f1cb
|
Fix for an Issue #367
|
2013-01-22 14:27:17 +01:00 |
|
Miroslav Stampar
|
09c02c6c72
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-22 14:08:31 +01:00 |
|
Miroslav Stampar
|
15b0ab1b44
|
Fix for a 'no parameter found' problem when user says N on 'custom injection mark found in POST...'
|
2013-01-22 14:08:19 +01:00 |
|
Bernardo Damele
|
061aef57ba
|
missing import
|
2013-01-22 11:25:01 +00:00 |
|
Miroslav Stampar
|
59b02539ca
|
More general approach regarding that last commit
|
2013-01-22 11:34:34 +01:00 |
|
Miroslav Stampar
|
01f1488f07
|
Minor patch (annoying trailing spaces for some DBMSes --technique=B --sql-query)
|
2013-01-22 11:29:51 +01:00 |
|
Bernardo Damele
|
e558040810
|
minor fix to previous commit
|
2013-01-21 17:10:56 +00:00 |
|
Bernardo Damele
|
d43b04c582
|
better detection if vulnerable of not for regression test
|
2013-01-21 17:09:35 +00:00 |
|
Miroslav Stampar
|
b35a0810ef
|
Fix for an Issue #364
|
2013-01-21 17:01:52 +01:00 |
|
Miroslav Stampar
|
1e3f68c7ff
|
Rewriting some query crafting parts (especially those .find(' FROM '))
|
2013-01-21 16:15:38 +01:00 |
|
Miroslav Stampar
|
832d95984c
|
IFNULL-like mechanism now works on SQLite 2 too
|
2013-01-21 15:04:27 +01:00 |
|
Miroslav Stampar
|
75bf8528d1
|
Minor just in case update
|
2013-01-21 14:50:43 +01:00 |
|
Miroslav Stampar
|
c55a002f95
|
Language fix
|
2013-01-21 13:19:08 +01:00 |
|
Miroslav Stampar
|
80255433b0
|
Trivial style update
|
2013-01-21 13:18:34 +01:00 |
|
Miroslav Stampar
|
0e86175342
|
Adding new common function for further refactoring
|
2013-01-21 11:50:47 +01:00 |
|
Miroslav Stampar
|
3200134b3b
|
Fix for a regression test #30 test case fail (Firebird inline)
|
2013-01-21 10:12:54 +01:00 |
|
Miroslav Stampar
|
069c6acabd
|
Another update for an Issue #362
|
2013-01-20 22:47:26 +01:00 |
|
Miroslav Stampar
|
b4a55a809e
|
Refactoring DBMS string escaping functions
|
2013-01-20 13:45:58 +01:00 |
|
Bernardo Damele
|
3373e30808
|
minor fix for a bug introduced with commit 1ad9e26a21
|
2013-01-20 02:40:40 +00:00 |
|
Bernardo Damele
|
115be9d7b5
|
minor fixes
|
2013-01-20 01:26:46 +00:00 |
|
Miroslav Stampar
|
0a4f5d2e51
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-19 19:08:18 +01:00 |
|
Miroslav Stampar
|
e9641e30db
|
This last commit was in haste :)
|
2013-01-19 19:07:38 +01:00 |
|
Miroslav Stampar
|
6a87dd9225
|
Minor update (just for consistency with the rest of code)
|
2013-01-19 19:07:06 +01:00 |
|
Miroslav Stampar
|
979e108c87
|
Minor update (just for consistency with the rest of code)
|
2013-01-19 19:06:51 +01:00 |
|
Bernardo Damele
|
f89b25fdb6
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-19 18:04:38 +00:00 |
|
Bernardo Damele
|
adf97e630f
|
add possibility to provide a list of web server document root possible directories for web shell upload in --os-cmd and --os-shell for MySQL
|
2013-01-19 18:04:33 +00:00 |
|
Miroslav Stampar
|
9ce2395405
|
Minor refactoring
|
2013-01-19 18:40:44 +01:00 |
|
Miroslav Stampar
|
3f4c010370
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-19 18:28:52 +01:00 |
|
Miroslav Stampar
|
efe26ac3f8
|
In case that content-length header was not in a desired case ('Content-length') POST request file would fail badly (repeating original content-length header value)
|
2013-01-19 18:28:37 +01:00 |
|
Bernardo Damele
|
6a62292a3f
|
layout adjustment
|
2013-01-19 17:11:16 +00:00 |
|
Miroslav Stampar
|
bb6b89fe93
|
Patch for an Issue #360
|
2013-01-19 18:06:36 +01:00 |
|
Bernardo Damele
|
dcf2dcd03d
|
all we need to debug failed test cases while regression test run..
|
2013-01-19 17:04:57 +00:00 |
|
Bernardo Damele
|
f22fd396ef
|
write the test case name before it is run so if the test case crashes badly, we can trace back what test case it was at a later stage
|
2013-01-19 16:41:19 +00:00 |
|
Bernardo Damele
|
1923ef691e
|
just in case, add also the test case name inside the temp folder for debug purposes
|
2013-01-19 16:06:46 +00:00 |
|
Bernardo Damele
|
c95119559e
|
minor bug fix
|
2013-01-19 00:41:51 +00:00 |
|
Bernardo Damele
|
0e78fbef56
|
correctly format SQLi payload for inline query technique
|
2013-01-19 00:28:03 +00:00 |
|
Bernardo Damele
|
6be7eee8d6
|
more fixes
|
2013-01-18 23:35:16 +00:00 |
|
Bernardo Damele
|
56eaa073ce
|
fixed test cases for Firebird - #312
|
2013-01-18 23:32:39 +00:00 |
|
Bernardo Damele
|
1f4c6a8371
|
avoid blank line if password hashes have not been fetched
|
2013-01-18 22:10:36 +00:00 |
|
Bernardo Damele
|
1ad9e26a21
|
bug fix for ORDER BY users provided statements (issue #354)
|
2013-01-18 21:40:50 +00:00 |
|
Miroslav Stampar
|
ac7709204a
|
Better fix for that page/headers/comparison --string candidate problem
|
2013-01-18 17:00:11 +01:00 |
|
Miroslav Stampar
|
8141d17985
|
Revert of previous commit (more care has to be done regarding headers dynamicity)
|
2013-01-18 16:49:35 +01:00 |
|